|
|
|
|
|
|
by hannob
3438 days ago
|
|
|
I run my own mail server, I can tell you this: Buffer overflows and format string vulns in your imap implementation will be the least of your worries. It is certainly still valuable work to audit the software used for the mailserver. But the challenges lie elsewhere. The biggest chunks are configuration issues and - if you have users that aren't very security savvy - stolen passwords and subsequent abuse of mail accounts for spam. |
|
|
This is where having a mail server with a sane configuration file comes handy. OpenSMTPd is simply awesome in that regard. Plus, it too was recently audited and vulnerabilities fixed so it should be secure.
OpenSMTPd + Dovecot makes for an awesome combination for a mail server.